A cyber campaign, supposedly financially motivated, is targeting users in Poland and Germany with sophisticated phishing emails masquerading as financial or logistics companies. The emails spread various types of malware, including Agent Tesla, Snake Keylogger, and an undocumented backdoor called TorNet, according to researchers at Cisco Talos. The hackers also use evasion techniques and leverage Windows Scheduled Tasks to bypass detection.
Iran-linked hackers disrupt operations at US critical infrastructure sites
Hackers working on behalf of the Iranian government are disrupting operations at multiple US critical infrastructure sites, likely in response to the country’s ongoing war
